Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the QueryInterface method of the built-in Location and Navigator objects, which leads to memory corruption.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | 1.5 (including) | 1.5 (including) |
Seamonkey | Mozilla | 1.0 (including) | 1.0 (including) |
Seamonkey | Mozilla | 1.0-beta (including) | 1.0-beta (including) |
Thunderbird | Mozilla | 1.5 (including) | 1.5 (including) |